Consolidated identity management system provisioning to manage access across landscapes
First Claim
1. A non-transitory computer-readable medium to store instructions, which when executed by a computer, cause the computer to perform operations comprising:
- receive a request to provision an entity in one or more heterogeneous landscapes, wherein the request includes one or more sub-requests;
upon determining that the one or more heterogeneous landscapes corresponding to the one or more sub-requests are connected to a central identity management (IDM) system, provision the entity in the one or more heterogeneous landscapes via the central IDM system;
upon determining that the one or more heterogeneous landscapes corresponding to the one or more sub-requests are not connected to the central IDM system, directly provision the entity in the one or more heterogeneous landscapes;
upon determining that an IDM configuration supports immediate provisioning, receive a payload as a synchronous request for provisioning the entity, wherein the payload is built for representational state transfer (REST) application programming interface (API) call;
upon determining that the IDM configuration does not support immediate provisioning, receive a payload as an asynchronous request for provisioning the entity, wherein the payload is built for representational state transfer (REST) application programming interface (API) call;
upon determining that a response is not received from the central IDM system with a status of the one or more sub-requests, determine the status of the one or more sub-requests from the central IDM system;
upon receiving a response from the central IDM system with the status of the one or more sub-requests, update the status in an audit log;
update a workflow corresponding to provisioning the entity; and
close the request after receiving status update from the individual one or more sub-requests.
1 Assignment
0 Petitions
Accused Products
Abstract
In a process of consolidated identity management system provisioning to manage access across landscapes, a request is received to provision an entity in one or more heterogeneous landscapes. The request includes one or more sub-requests. Upon determining that the one or more heterogeneous landscapes corresponding to the one or more sub-request is connected to a central IDM system, the entity in the one or more heterogeneous landscapes is provisioned via the central IDM system. The status of the one or more sub-requests is determined using a push pull mechanism at the central IDM system. Upon determining that the one or more heterogeneous landscapes corresponding to the one or more sub-requests is not connected to the central IDM system, the entity is directly provisioned in the one or more heterogeneous landscapes. The request is closed after receiving the status update from the individual one or more sub-requests.
10 Citations
16 Claims
-
1. A non-transitory computer-readable medium to store instructions, which when executed by a computer, cause the computer to perform operations comprising:
-
receive a request to provision an entity in one or more heterogeneous landscapes, wherein the request includes one or more sub-requests; upon determining that the one or more heterogeneous landscapes corresponding to the one or more sub-requests are connected to a central identity management (IDM) system, provision the entity in the one or more heterogeneous landscapes via the central IDM system; upon determining that the one or more heterogeneous landscapes corresponding to the one or more sub-requests are not connected to the central IDM system, directly provision the entity in the one or more heterogeneous landscapes; upon determining that an IDM configuration supports immediate provisioning, receive a payload as a synchronous request for provisioning the entity, wherein the payload is built for representational state transfer (REST) application programming interface (API) call; upon determining that the IDM configuration does not support immediate provisioning, receive a payload as an asynchronous request for provisioning the entity, wherein the payload is built for representational state transfer (REST) application programming interface (API) call; upon determining that a response is not received from the central IDM system with a status of the one or more sub-requests, determine the status of the one or more sub-requests from the central IDM system; upon receiving a response from the central IDM system with the status of the one or more sub-requests, update the status in an audit log; update a workflow corresponding to provisioning the entity; and close the request after receiving status update from the individual one or more sub-requests. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A computer-implemented method of consolidated identity management system provisioning to manage access across landscapes, the method comprising:
-
receiving a request to provision an entity in one or more heterogeneous landscapes, wherein the request includes one or more sub-requests; upon determining that the one or more heterogeneous landscapes corresponding to the one or more sub-requests are connected to a central identity management (IDM) system, provisioning the entity in the one or more heterogeneous landscapes via the central IDM system; upon determining that the one or more heterogeneous landscapes corresponding to the one or more sub-requests are not connected to the central IDM system, directly provisioning the entity in the one or more heterogeneous landscapes; upon determining that an IDM configuration supports immediate provisioning, receive a payload as a synchronous request for provisioning the entity, wherein the payload is built for representational state transfer (REST) application programming interface (API) call; upon determining that the IDM configuration does not support immediate provisioning, receive a payload as an asynchronous request for provisioning the entity, wherein the payload is built for representational state transfer (REST) application programming interface (API) call; upon determining that a response is not received from the central IDM system with a status of the one or more sub-requests, determine the status of the one or more sub-requests from the central IDM system; upon receiving a response from the central IDM system with the status of the one or more sub-requests, update the status in an audit log; update a workflow corresponding to provisioning the entity; and closing the request after receiving status update from the individual one or more sub-requests. - View Dependent Claims (7, 8, 9, 10, 11)
-
-
12. A computer system for consolidated identity management system provisioning to manage access across landscapes, comprising:
-
a computer memory to store program code; and a processor to execute the program code to; receive a request to provision an entity in one or more heterogeneous landscapes, wherein the request includes one or more sub-requests; upon determining that the one or more heterogeneous landscapes corresponding to the one or more sub-requests are connected to a central identity management (IDM) system, provision the entity in the one or more heterogeneous landscapes via the central IDM system; upon determining that the one or more heterogeneous landscapes corresponding to the one or more sub-requests are not connected to the central IDM system, directly provision the entity in the one or more heterogeneous landscapes; upon determining that an IDM configuration supports immediate provisioning, receive a payload as a synchronous request for provisioning the entity, wherein the payload is built for representational state transfer (REST) application programming interface (API) call; upon determining that the IDM configuration does not support immediate provisioning, receive a payload as an asynchronous request for provisioning the entity, wherein the payload is built for representational state transfer (REST) application programming interface (API) call; upon determining that a response is not received from the central IDM system with a status of the one or more sub-requests, determine the status of the one or more sub-requests from the central IDM system; upon receiving a response from the central IDM system with the status of the one or more sub-requests, update the status in an audit log; update a workflow corresponding to provisioning the entity; and close the request after receiving status update from the individual one or more sub-requests. - View Dependent Claims (13, 14, 15, 16)
-
Specification